资 源 简 介
filter access according to process signature, user running and services requested. have 3 components: plugin - set of "attachments" to the calling process: shared library, shell plugin, etc; agent - a AF_UNIX based server, which receive the plugin request, identifies the calling process, create and compare MD5/SHA1 signatures, validate users and ACL policies. If validation passed, send request to the password broker servers for the client.
